CVE-2023-54116 — Out-of-bounds Write in Linux

CWE-787 — Out-of-bounds Write7 documents6 sources

Severity

3.3LOW

No vector

EPSS

0.0%

top 93.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-generic: prohibit potential out-of-bounds access The fbdev test of IGT may write after EOF, which lead to out-of-bound access for drm drivers with fbdev-generic. For example, run fbdev test on a x86+ast2400 platform, with 1680x1050 resolution, will cause the linux kernel hang with the following call trace: Oops: 0000 [#1] PREEMPT SMP PTI [IGT] fbdev: starting subtest eof Workqueue: events drm_fb_helper_damage_work […

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.18.0 — 6.1.30+1

▶Debianlinux/linux_kernel< 6.1.37-1+2

▶CVEListV5linux/linuxaa15c677cc34e626789cb65b8e7375180851c03b — efd2821b8abeccb6b51423002e2a62921481a26e+3

▶debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-99xh-3c2q-rwgv: In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-generic: prohibit potential out-of-bounds access The fbdev test of IGT↗2025-12-24

▶

OSV

CVE-2023-54116: In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-generic: prohibit potential out-of-bounds access The fbdev test of IGT m↗2025-12-24

▶

OSV

drm/fbdev-generic: prohibit potential out-of-bounds access↗2025-12-24

▶

📋Vendor Advisories

Red Hat

kernel: drm/fbdev-generic: prohibit potential out-of-bounds access↗2025-12-24

▶

Debian

CVE-2023-54116: linux - In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-g...↗2023

▶

🕵️Threat Intelligence

Wiz

CVE-2023-54116 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶